Databases hold vast amounts of personal information including some very sensitive tidbits, creating headaches for the companies that must curate them. Now, sophisticated tools and technologies are making it possible for database developers to have their cake and, to stay in metaphor, not count the calories by keeping the information private. The solutions depend upon […]
Oracle is urging users to patch their Oracle Database installations to plug a critical security issue that can result in complete compromise of the Oracle Database and shell access to the underlying server. About the vulnerability (CVE-2018-3110) The vulnerability (CVE-2018-3110) affects Oracle Database versions 11.2.0.4 and 12.2.0.1 on Windows and is apparently easy to exploit, […]
The data redaction feature, designed for selective, real-time protection of certain database information can be bypassed without too much effort, according to security expert David Litchfield. Employed at Datacomm TSS and recognized authority on database security, Litchfield held a presentation called Oracle Data Redaction Is Broken at the DefCon hacker convention last week. He informed […]
Latest Comments